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Remarks 

Claims 1-9, 12-17, 19-21, and 23-41 are currently pending in the subject 
application and are presently under consideration. Claims 1, 12, 16, 17, 21, 26, 30, 31, 
39, and 41 have been amended as shown on pp. 2-9 of the Reply. 

Favorable reconsideration of the subject patent application is respectfully 
requested in view of the comments and amendments herein. 

I. Rejection of Claims 1-41 Under 35 U.S.C. §1020)) 

Claims 1-41 stand rejected under 35 U.S.C. § 102(b) as being anticipated by 
Swiler et al., U.S. Patent 7,013,395 Bl. It is requested that this rejection be withdrawn 
for at least the following reasons. Swiler et al. does not disclose each and every element 
of the claimed subject matter. 

A single prior art reference anticipates a patent claim only 
if it expressly or inherently describes each and every 
limitation set forth in the patent claim. Trintec Industries, 
Inc. v. Top-U.S.A. Corp., 295 F.3d 1292, 63 USPQ2d 1597 
(Fed. Cir. 2002); See Verdegaal Bros. v. Union Oil Co. of 
California, 814 F.2d 628, 631, 2 USPQ2d 1051, 1053 (Fed. 
Cir. 1987). The identical invention must be shown in as 
complete detail as is contained in the ... claim. 
Richardson v. Suzuki Motor Co., 868 F.2d 1226, 9 USPQ2d 
1913, 1920 (Fed. Cir. 1989) (emphasis added). 

The claimed subject matter relates to a tool that provides an automated process, 
component, and that generates a set (or subset) of security guidelines, security data, and/or 
security components. An input to the tool can be in the form of an abstract description or 
model of a factory, wherein the factory description includes one or more assets to be 
protected, and associated pathways to access the assets. Security data generated by the 
tool includes a set of recommended security components, related interconnection topology, 
connection configurations, application procedures, security policies, rules, user 
procedures, and/or user practices. {See Specification, paragraph 9). Toward this end, 
claim 1 (and similarly claims 16, 30, and 41) recites a security analysis tool for an 
automation system, comprising: an interface component to generate a description of 



10 



10/661,696 



03AB014C/ALBRP303USC 



factory assets, wherein the description includes at least one of shop floor access patterns, 
Intranet access patterns, Internet access patterns, and wireless access patterns and an 
analyzer component to generate one or more security outputs based on the description, 
wherein the analyzer component is adapted for partitioned security specification entry 
and sign-off from various groups. Swiler et al. fails to disclose such claimed aspects. 
Notably Swiler et al. is silent with respect to partitioning. 

Swiler et al. describe modeling network risks based on an attack graph. Each 
node in the graph represents a possible attack state. A node contains information about 
the physical machine(s) the attacker has accessed, the user privilege level the attacker has 
gained, and effects of the attack so far, such as placement of Trojan horses or 
modification of access control. Edges represent a change of state caused by a single 
action taken by the attacker (including normal user transitions if they have gained access 
to a normal user's account) or actions taken by an unwitting assistant (such as the 
execution of a Trojan horse). The attack graph is automatically generated given three 
types of input: attack templates, a configuration file, and an attacker profile. Attack 
templates represent a generic attack step including necessary and acquired security 
attributes {e.g., attacker capabilities and/or system vulnerabilities). {See col. 4, lines 32- 
47). 

However, Swiler et al. is silent with respect to the aforementioned claimed 
features of applicants' invention. In particular, Swiler et al. does not provide for a 
description that includes an analyzer component that is adapted for partitioned security 
specification entry and sign-off from various groups as in applicant's claimed invention. 

In view of at least the foregoing, it is readily apparent that Swiler et al. does not 
teach or suggest the subject inventions as recited in independent claims 1,16, 30, and 41 
(and associated dependent claims). This rejection should be withdrawn. 

Claim 12 (and similarly claims 17, 26, 31, and 39) recites inputting at least one 
model related to one or more factory assets; monitoring access to the factory assets to 
learn at least one access pattern; attempting to gain identity information about end 
devices that relates to hacker entry; and generating one or more security outputs based 
on the model. Swiler et al. fails to disclose such claimed aspects. Swiler et al. merely 
discloses automatically generating an attack graph. Swiler et al. is silent with respect to 
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the claimed functionality of automatically interrogating an automation system at periodic 
intervals. Notably Swiler et al. is silent with respect to identity information about end 
devices that relates to hacker entry. 

In view of at least the foregoing, it is readily apparent that Swiler et al. does not 
teach or suggest the subject inventions as recited in independent claims 12 17, 26, 31, and 
39 (and associated dependent claims). This rejection should be withdrawn. 
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Conclusion 

The present application is believed to be in condition for allowance in view of the 
above comments and amendments. A prompt action to such end is earnestly solicited. 

In the event any fees are due in connection with this document, the Commissioner 
is authorized to charge those fees to Deposit Account No. 50-1063. 

Should the Examiner believe a telephone interview would be helpful to expedite 
favorable prosecution, the Examiner is invited to contact applicants' undersigned 
representative at the telephone number below. 



Respectfully submitted, 
Amin, Turocy & Calvin, llp 



/Himanshu S. Amin/ 
Himanshu S. Amin 
Reg. No. 40,894 

Amin, Turocy & Calvin, llp 
24 th Floor, National City Center 
1900 E. 9 th Street 
Cleveland, Ohio 44114 
Telephone (216) 696-8730 
Facsimile (216) 696-8731 



13 



